This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/228b42-49fb-42cd-8b1b-2164d9995198/1/4KwoPjMEOKwVgqjkR1iM1Sga8ls.roa File: 4KwoPjMEOKwVgqjkR1iM1Sga8ls.roa (raw, json) Hash identifier: zEP8VUcw4u5qtFYg9l1WCeFUs+0BvYnLihv3gDQhsgg= Subject key identifier: E0:AC:28:3E:33:04:38:AC:15:82:A8:E4:47:58:8C:D5:28:1A:F2:5B Certificate issuer: /CN=2d2cc139321951db276f3ffa293ac0a0f3fa8bf7 Certificate serial: 019B7C127983217F656E7D12A18ACAEA65D9 Authority key identifier: 2D:2C:C1:39:32:19:51:DB:27:6F:3F:FA:29:3A:C0:A0:F3:FA:8B:F7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LSzBOTIZUdsnbz_6KTrAoPP6i_c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/228b42-49fb-42cd-8b1b-2164d9995198/1/4KwoPjMEOKwVgqjkR1iM1Sga8ls.roa Signing time: Fri 02 Jan 2026 00:19:04 +0000 ROA not before: Fri 02 Jan 2026 00:19:04 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213701 IP address blocks: 193.17.67.0/24 maxlen: 24 2001:678:3ec::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/228b42-49fb-42cd-8b1b-2164d9995198/1/LSzBOTIZUdsnbz_6KTrAoPP6i_c.crl rsync://rpki.ripe.net/repository/DEFAULT/d6/228b42-49fb-42cd-8b1b-2164d9995198/1/LSzBOTIZUdsnbz_6KTrAoPP6i_c.mft rsync://rpki.ripe.net/repository/DEFAULT/LSzBOTIZUdsnbz_6KTrAoPP6i_c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:79:83:21:7f:65:6e:7d:12:a1:8a:ca:ea:65:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2d2cc139321951db276f3ffa293ac0a0f3fa8bf7 Validity Not Before: Jan 2 00:19:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e0ac283e330438ac1582a8e447588cd5281af25b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:5c:c5:48:39:c5:56:14:99:71:0f:41:34:ed: fc:21:45:a3:3c:57:2a:2b:e9:23:d1:a0:46:dd:85: 4e:c8:2b:2a:a1:57:ee:63:eb:c0:c9:fd:04:6d:41: ff:f1:36:72:11:b0:f0:c4:df:c3:c4:96:4c:41:e5: e2:32:73:07:c2:48:12:7d:75:52:0c:92:51:39:ce: cd:e9:ee:1b:e7:2d:b7:9a:8b:82:97:06:d0:28:bf: ec:74:68:90:d2:02:65:79:67:ac:42:8f:1f:55:9d: bc:f3:df:96:c2:73:df:5e:45:a9:50:a9:7f:ad:5b: 43:eb:90:f1:4c:04:7f:aa:f8:06:fb:27:6f:0a:95: d8:1d:05:0b:45:a7:34:79:40:51:34:33:43:99:98: ed:24:30:fd:4d:2b:1d:ca:24:74:d2:b8:e9:1c:6a: 3b:1b:f5:93:a8:98:ac:f3:c3:ae:73:d4:55:f5:7a: 3c:18:e9:3a:b9:64:cc:d7:5b:19:7e:76:ed:3f:1e: a8:ea:7a:f9:d6:05:be:2b:67:ef:39:c2:27:5b:17: b4:c3:84:1a:f0:1f:41:56:51:cd:c1:d4:7c:ea:3e: 39:ae:e6:8e:cc:37:95:ba:2d:be:ed:11:56:b6:88: 1e:88:61:9d:0f:4b:49:ba:78:9c:bb:9d:17:c8:41: 8d:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:AC:28:3E:33:04:38:AC:15:82:A8:E4:47:58:8C:D5:28:1A:F2:5B X509v3 Authority Key Identifier: keyid:2D:2C:C1:39:32:19:51:DB:27:6F:3F:FA:29:3A:C0:A0:F3:FA:8B:F7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LSzBOTIZUdsnbz_6KTrAoPP6i_c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/228b42-49fb-42cd-8b1b-2164d9995198/1/4KwoPjMEOKwVgqjkR1iM1Sga8ls.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/228b42-49fb-42cd-8b1b-2164d9995198/1/LSzBOTIZUdsnbz_6KTrAoPP6i_c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.17.67.0/24 IPv6: 2001:678:3ec::/48 Signature Algorithm: sha256WithRSAEncryption 86:c0:95:85:05:8d:31:a6:d6:58:37:34:bf:1f:82:75:90:dc: 8f:bb:fb:24:fb:c7:3e:34:68:92:76:69:4b:2e:d4:54:fb:92: ad:a5:65:52:63:df:bb:47:35:7b:38:b6:12:2f:2d:e2:0b:14: 68:94:88:0c:51:b1:23:f5:79:5f:04:9d:bb:45:d8:7e:fd:b0: 94:0d:b2:02:b3:90:c6:09:83:2c:e6:89:88:42:54:f5:cc:2f: df:a8:c3:00:89:30:41:bb:c2:23:5b:7f:d5:71:bd:f5:58:b0: b0:8f:dc:42:a0:a5:2a:3b:7f:9a:9a:56:f7:16:f4:aa:de:65: bd:9c:30:74:f6:17:2d:47:28:72:db:2b:84:b2:f2:4e:54:8c: 4a:ca:aa:cc:51:43:3e:ff:68:be:c9:7b:df:1f:85:64:3d:9c: bf:b7:a6:4e:17:8a:ab:11:0b:d6:8f:5d:97:26:e8:49:00:a1: c2:b0:07:63:fe:e4:84:44:7d:6f:aa:5b:d4:d8:fb:67:33:c0: 99:23:e5:d3:09:05:0b:34:56:4c:b5:36:a1:b3:5f:10:0c:ea: 3f:70:22:f7:37:08:65:c4:ac:85:49:44:e6:39:63:e5:40:07: aa:0a:bc:39:46:03:bd:0f:8b:c3:21:80:c7:b9:53:6c:2b:33: 36:9e:b4:fe -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt8EnmDIX9lbn0SoYrK6mXZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJkMmNjMTM5MzIxOTUxZGIyNzZmM2ZmYTI5M2FjMGEwZjNm YThiZjcwHhcNMjYwMTAyMDAxOTA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlMGFjMjgzZTMzMDQzOGFjMTU4MmE4ZTQ0NzU4OGNkNTI4MWFmMjViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAplzFSDnFVhSZcQ9BNO38IUWjPFcq K+kj0aBG3YVOyCsqoVfuY+vAyf0EbUH/8TZyEbDwxN/DxJZMQeXiMnMHwkgSfXVS DJJROc7N6e4b5y23mouClwbQKL/sdGiQ0gJleWesQo8fVZ2889+WwnPfXkWpUKl/ rVtD65DxTAR/qvgG+ydvCpXYHQULRac0eUBRNDNDmZjtJDD9TSsdyiR00rjpHGo7 G/WTqJis88Ouc9RV9Xo8GOk6uWTM11sZfnbtPx6o6nr51gW+K2fvOcInWxe0w4Qa 8B9BVlHNwdR86j45ruaOzDeVui2+7RFWtogeiGGdD0tJunicu50XyEGNyQIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFOCsKD4zBDisFYKo5EdYjNUoGvJbMB8GA1UdIwQY MBaAFC0swTkyGVHbJ28/+ik6wKDz+ov3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTFN6Qk9USVpVZHNuYnpfNktUckFvUFA2aV9jLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNi8yMjhiNDItNDlmYi00MmNkLThiMWIt MjE2NGQ5OTk1MTk4LzEvNEt3b1BqTUVPS3dWZ3Fqa1IxaU0xU2dhOGxzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNi8yMjhiNDItNDlmYi00MmNkLThiMWItMjE2NGQ5OTk1MTk4 LzEvTFN6Qk9USVpVZHNuYnpfNktUckFvUFA2aV9jLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAwRFDMA8E AgACMAkDBwAgAQZ4A+wwDQYJKoZIhvcNAQELBQADggEBAIbAlYUFjTGm1lg3NL8f gnWQ3I+7+yT7xz40aJJ2aUsu1FT7kq2lZVJj37tHNXs4thIvLeILFGiUiAxRsSP1 eV8EnbtF2H79sJQNsgKzkMYJgyzmiYhCVPXML9+owwCJMEG7wiNbf9VxvfVYsLCP 3EKgpSo7f5qaVvcW9KreZb2cMHT2Fy1HKHLbK4Sy8k5UjErKqsxRQz7/aL7Je98f hWQ9nL+3pk4XiqsRC9aPXZcm6EkAocKwB2P+5IREfW+qW9TY+2czwJkj5dMJBQs0 Vky1NqGzXxAM6j9wIvc3CGXErIVJROY5Y+VAB6oKvDlGA70Pi8MhgMe5U2wrMzae tP4= -----END CERTIFICATE-----Generated at Sun Jan 25 18:09:00 2026 by rpki-client